106.13.26.31 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 21 04:21:29 localhost sshd\[25218\]: Invalid user ftp from 106.13.26.31 port 53148 Aug 21 04:21:29 localhost sshd\[25218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 21 04:21:31 localhost sshd\[25218\]: Failed password for invalid user ftp from 106.13.26.31 port 53148 ssh2	2019-08-21 10:29:12
attackbotsspam	Aug 19 12:46:47 game-panel sshd[20796]: Failed password for root from 106.13.26.31 port 47394 ssh2 Aug 19 12:50:43 game-panel sshd[20941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 19 12:50:45 game-panel sshd[20941]: Failed password for invalid user owen from 106.13.26.31 port 40488 ssh2	2019-08-20 00:41:20
attack	Aug 12 18:08:28 vps647732 sshd[29266]: Failed password for root from 106.13.26.31 port 44870 ssh2 Aug 12 18:13:37 vps647732 sshd[29376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 ...	2019-08-13 00:17:05
attack	Aug 2 21:13:16 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: Invalid user hacker from 106.13.26.31 Aug 2 21:13:16 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 2 21:13:18 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: Failed password for invalid user hacker from 106.13.26.31 port 46734 ssh2 Aug 2 21:26:25 Ubuntu-1404-trusty-64-minimal sshd\[12750\]: Invalid user botmaster from 106.13.26.31 Aug 2 21:26:25 Ubuntu-1404-trusty-64-minimal sshd\[12750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31	2019-08-03 06:39:19
attackspam	Jul 29 05:16:57 xb0 sshd[6252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:16:59 xb0 sshd[6252]: Failed password for r.r from 106.13.26.31 port 46130 ssh2 Jul 29 05:16:59 xb0 sshd[6252]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul 29 05:38:13 xb0 sshd[2220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:38:15 xb0 sshd[2220]: Failed password for r.r from 106.13.26.31 port 39414 ssh2 Jul 29 05:38:15 xb0 sshd[2220]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul 29 05:40:56 xb0 sshd[27144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:40:57 xb0 sshd[27144]: Failed password for r.r from 106.13.26.31 port 34368 ssh2 Jul 29 05:40:57 xb0 sshd[27144]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul........ -------------------------------	2019-07-29 20:46:01

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.26.62	attackspam	(sshd) Failed SSH login from 106.13.26.62 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 13:57:38 amsweb01 sshd[31506]: Invalid user han from 106.13.26.62 port 41772 Aug 30 13:57:41 amsweb01 sshd[31506]: Failed password for invalid user han from 106.13.26.62 port 41772 ssh2 Aug 30 14:11:31 amsweb01 sshd[1037]: Invalid user cosmo from 106.13.26.62 port 52992 Aug 30 14:11:33 amsweb01 sshd[1037]: Failed password for invalid user cosmo from 106.13.26.62 port 52992 ssh2 Aug 30 14:16:11 amsweb01 sshd[1795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 user=root	2020-08-30 20:42:46
106.13.26.62	attackspam	2020-08-27T01:25:04.712830ks3355764 sshd[28109]: Invalid user ide from 106.13.26.62 port 52384 2020-08-27T01:25:06.056295ks3355764 sshd[28109]: Failed password for invalid user ide from 106.13.26.62 port 52384 ssh2 ...	2020-08-27 07:47:06
106.13.26.62	attack	Aug 1 16:26:32 fhem-rasp sshd[4689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 user=root Aug 1 16:26:35 fhem-rasp sshd[4689]: Failed password for root from 106.13.26.62 port 58614 ssh2 ...	2020-08-02 01:43:48
106.13.26.62	attackspambots	Jul 18 18:11:06 master sshd[2173]: Failed password for invalid user by from 106.13.26.62 port 58152 ssh2 Jul 18 18:17:52 master sshd[2278]: Failed password for invalid user rcs from 106.13.26.62 port 36046 ssh2 Jul 18 18:22:11 master sshd[2357]: Failed password for invalid user maint from 106.13.26.62 port 47722 ssh2 Jul 18 18:25:54 master sshd[2399]: Failed password for invalid user unturned from 106.13.26.62 port 59412 ssh2 Jul 18 18:29:37 master sshd[2445]: Failed password for invalid user user from 106.13.26.62 port 42848 ssh2 Jul 18 18:33:19 master sshd[2905]: Failed password for invalid user admin from 106.13.26.62 port 54520 ssh2 Jul 18 18:37:02 master sshd[2953]: Failed password for invalid user facai from 106.13.26.62 port 37942 ssh2 Jul 18 18:40:47 master sshd[3070]: Failed password for invalid user mort from 106.13.26.62 port 49614 ssh2 Jul 18 18:44:36 master sshd[3130]: Failed password for invalid user antje from 106.13.26.62 port 33046 ssh2	2020-07-19 03:02:50
106.13.26.62	attackspambots	Jul 4 20:49:56 raspberrypi sshd[6366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 Jul 4 20:49:58 raspberrypi sshd[6366]: Failed password for invalid user gmodserver from 106.13.26.62 port 38880 ssh2 ...	2020-07-05 02:59:03
106.13.26.67	attack	Invalid user vicente from 106.13.26.67 port 44694	2020-06-29 23:28:03
106.13.26.67	attack	Jun 26 05:56:44 pve1 sshd[27796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 26 05:56:45 pve1 sshd[27796]: Failed password for invalid user lmy from 106.13.26.67 port 54842 ssh2 ...	2020-06-26 12:22:20
106.13.26.67	attack	Jun 22 13:28:07 sso sshd[8569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 22 13:28:09 sso sshd[8569]: Failed password for invalid user manjaro from 106.13.26.67 port 46612 ssh2 ...	2020-06-22 20:05:42
106.13.26.62	attack	(sshd) Failed SSH login from 106.13.26.62 (CN/China/-): 5 in the last 3600 secs	2020-06-09 21:26:08
106.13.26.67	attack	Jun 9 06:40:59 eventyay sshd[3116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 9 06:41:01 eventyay sshd[3116]: Failed password for invalid user nagios from 106.13.26.67 port 34968 ssh2 Jun 9 06:44:35 eventyay sshd[3323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 ...	2020-06-09 12:50:46
106.13.26.67	attack	Jun 6 23:04:41 santamaria sshd\[27005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root Jun 6 23:04:43 santamaria sshd\[27005\]: Failed password for root from 106.13.26.67 port 54594 ssh2 Jun 6 23:08:13 santamaria sshd\[27091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root ...	2020-06-07 08:13:25
106.13.26.67	attack	$f2bV_matches	2020-06-01 17:49:29
106.13.26.67	attackbots	2020-05-25T03:49:46.146220shield sshd\[19492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root 2020-05-25T03:49:47.570627shield sshd\[19492\]: Failed password for root from 106.13.26.67 port 48766 ssh2 2020-05-25T03:53:02.616357shield sshd\[20089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root 2020-05-25T03:53:04.951047shield sshd\[20089\]: Failed password for root from 106.13.26.67 port 35752 ssh2 2020-05-25T03:56:26.844751shield sshd\[20847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root	2020-05-25 12:01:22
106.13.26.62	attackbots	Brute force SMTP login attempted. ...	2020-05-24 23:58:39
106.13.26.67	attackbots	ssh intrusion attempt	2020-05-22 15:05:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.26.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18464
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.26.31.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 20:45:51 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 31.26.13.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 31.26.13.106.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
85.113.7.93	attackbots	Honeypot attack, port: 445, PTR: 85-113-7-93.static.ktnet.kg.	2020-06-06 09:28:06
185.176.27.206	attackspambots	Scanned 332 unique addresses for 8 unique ports in 24 hours (ports 3355,3800,3905,3906,5999,30005,30006,30007)	2020-06-06 09:46:35
59.53.144.58	attack	failed_logins	2020-06-06 09:36:01
185.220.100.252	attackbots	(mod_security) mod_security (id:210492) triggered by 185.220.100.252 (DE/Germany/tor-exit-1.zbau.f3netze.de): 5 in the last 3600 secs	2020-06-06 09:59:29
185.97.116.165	attackspam	$f2bV_matches	2020-06-06 09:51:51
45.83.65.168	attackspambots	Jun 5 22:25:13 debian-2gb-nbg1-2 kernel: \[13647465.708769\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.83.65.168 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=1337 DF PROTO=TCP SPT=33575 DPT=22 WINDOW=0 RES=0x00 SYN URGP=0	2020-06-06 09:36:53
119.45.0.9	attackspambots	2020-06-06T01:13:38.601529abusebot.cloudsearch.cf sshd[27282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.0.9 user=root 2020-06-06T01:13:40.211310abusebot.cloudsearch.cf sshd[27282]: Failed password for root from 119.45.0.9 port 33180 ssh2 2020-06-06T01:16:07.183696abusebot.cloudsearch.cf sshd[27442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.0.9 user=root 2020-06-06T01:16:09.250012abusebot.cloudsearch.cf sshd[27442]: Failed password for root from 119.45.0.9 port 53350 ssh2 2020-06-06T01:16:57.712784abusebot.cloudsearch.cf sshd[27502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.0.9 user=root 2020-06-06T01:16:59.643587abusebot.cloudsearch.cf sshd[27502]: Failed password for root from 119.45.0.9 port 33600 ssh2 2020-06-06T01:17:50.976800abusebot.cloudsearch.cf sshd[27565]: pam_unix(sshd:auth): authentication failure; logname= uid= ...	2020-06-06 09:50:54
37.49.224.162	attackspam	Jun 6 01:59:38 XXX sshd[4073]: Invalid user admin from 37.49.224.162 port 60864	2020-06-06 10:08:06
222.239.124.19	attackbotsspam	Jun 6 00:06:52 server sshd[18331]: Failed password for root from 222.239.124.19 port 58914 ssh2 Jun 6 00:10:34 server sshd[18875]: Failed password for root from 222.239.124.19 port 60890 ssh2 ...	2020-06-06 09:39:45
134.122.90.113	attack	134.122.90.113 - - [06/Jun/2020:02:49:58 +0200] "GET /wp-login.php HTTP/1.1" 200 6183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.90.113 - - [06/Jun/2020:02:49:59 +0200] "POST /wp-login.php HTTP/1.1" 200 6434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.90.113 - - [06/Jun/2020:02:49:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-06 09:45:12
117.50.34.40	attack	Jun 6 08:49:39 web1 sshd[6389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.34.40 user=root Jun 6 08:49:42 web1 sshd[6389]: Failed password for root from 117.50.34.40 port 50278 ssh2 Jun 6 09:11:16 web1 sshd[11748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.34.40 user=root Jun 6 09:11:18 web1 sshd[11748]: Failed password for root from 117.50.34.40 port 43644 ssh2 Jun 6 09:15:29 web1 sshd[13059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.34.40 user=root Jun 6 09:15:31 web1 sshd[13059]: Failed password for root from 117.50.34.40 port 57942 ssh2 Jun 6 09:19:44 web1 sshd[14006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.34.40 user=root Jun 6 09:19:45 web1 sshd[14006]: Failed password for root from 117.50.34.40 port 44006 ssh2 Jun 6 09:23:53 web1 sshd[15071]: pam_unix(ssh ...	2020-06-06 09:25:11
2.94.192.207	attackbotsspam	prod6 ...	2020-06-06 09:27:24
46.101.151.97	attackspambots	Jun 6 00:09:13 vps647732 sshd[30648]: Failed password for root from 46.101.151.97 port 42024 ssh2 ...	2020-06-06 09:54:10
58.87.68.211	attack	$f2bV_matches	2020-06-06 09:56:04
198.108.66.241	attackspambots	scan r	2020-06-06 10:03:30

最近上报的IP列表

113.118.192.165	193.248.148.163	60.167.132.80	183.178.214.246
212.199.114.139	170.239.204.160	203.86.24.203	209.103.109.218
149.66.99.249	202.253.211.143	128.199.119.22	155.110.124.169
43.243.127.89	66.137.87.128	153.136.129.143	44.101.184.12
138.182.103.165	82.156.41.95	188.166.117.213	116.196.83.230